Hackerone Html-janitor Node Module
2 CVEs affecting Hackerone Html-janitor Node Module. Latest disclosed: 2018-06-04. Critical: 0, High: 0.
| CVE | Severity | Score | Published | Summary |
|---|---|---|---|---|
CVE-2017-0931 | | 2018-06-04 | html-janitor node module suffers from a Cross-Site Scripting (XSS) vulnerability via clean() accepting user-controlled values. | |
CVE-2017-0928 | | 2018-06-04 | html-janitor node module suffers from an External Control of Critical State Data vulnerability via user-control of the '_sanitized' variable causing sanitizati… |